[Ffmpeg-devel] Buffer overflow in ffdca

Uoti Urpala uoti.urpala
Fri Apr 27 02:36:37 CEST 2007

The loop at line 1104 doesn't check that the packet fits in the output

Maybe that was caused by confusion about how the bitstream writer works
- the code gives the output buffer size to init_put_bits(), but the
writer will just ignore that.

More information about the ffmpeg-devel mailing list